> [It'd be fine to configure the client cert file
> location and have Subclipse prompt the user for the
> password (say once per Eclipse dev "session").]

I asked Brian to post this. I think it is a JavaHL bug. We have
registered a prompting interface with JavaHL so that we can provide a GUI
to prompt the user when needed. This works for normal username and
password, as well as accepting server certificate. I think that JavaHL
just needs to be enhanced to use this interface in this scenario as well.

There is also another bug I have posted to this list where if we use the
Accept Temporary option on a server certificate it doesn't really work
correctly. The initial request succeeds, but all subsequent requests
fail. Ideally the "accept temporary" would be cached somewhere, at worst
the user would be continually prompted. Neither happens currently.